Selectively allow the evaluation of a symbolic linkID: oval:org.secpod.oval:def:18861 | Date: (C)2014-05-29 (M)2023-07-14 |
Class: COMPLIANCE | Family: windows |
The Selectively allow the evaluation of a symbolic link machine setting should be configured correctly.
Symbolic links can introduce vulnerabilities in certain applications. To mitigate this issue, you can selectively enable or disable the evaluation of these types of symbolic links: * Local Link to a Local Target * Local Link to a Remote Target * Remote Link to Remote Target * Remote Link to Local Target
Fix:
(1) GPO: Computer Configuration\Administrative Templates\System\Filesystem\Selectively allow the evaluation of a symbolic link
(2) KEY: HKLM\Software\Policies\Microsoft\Windows\Filesystems\NTFS\SymLinkState
Platform: |
Microsoft Windows Server 2008 R2 |